AMENDMENTS TO THE CLAIMS 

This listing of claims will replace all prior versions, and listings, of claims 
in the application: 

Listing of Claims: 
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1 . (Currently amended) A method for managing information retention in a 
syst^, comprising: 

3ceiving a set of information into a system; 
associating one or more keys with said set of information; 
encryptmg said set of information using said one or more keys; 
storing sakl set of information in encrypted form into one or more 
repositories . whereirKonly the encrypted forni of the set of information is 
persistently stored withm the information system and no unencrypted form of the 
set of information is persisWtly stored within the information system ; and 

purging said set of information from the system by deleting said one or 
more keys, thereby making said sel of information unrenderable. 

2. (Original) The method of claiirKl, wherein said set of information is 
purged from the system without requiring tmit the encrypted form of said set of 
information be deleted from the one or more rekositories. 



1 3. (Original) The method of claim 1, wherein said set of information is 

2 stored in the one or more repositories only in encrypted Wn. 

1 4. (Original) The method of claim 1 , wherein said one\r more keys 

2 comprises a symmetrically paired set of keys. 
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1 \ 5. (Original) The method of claim 1 , further comprising: 

2 \prior to deletion of said one or more keys, receiving a request from an 

3 information sink to render said set of information to a user; 

4 accessing the encrypted form of said set of information from the one or 

5 more repositoMes; 

6 decrypting the encrypted form of said set of information using said one or 

7 more keys to derive said set of information; and 

8 providing sard set of information to the information sink to render said set 

9 of information to the user. 

1 6. (Original) The method of claim 5, wherein said set of information is 

2 stored in the one or more repo!sitories only in encrypted form, and wherein the 

3 encrypted form of said set of inftumation is decrypted only when it is necessary to 

4 render said set of information to tnte user. 

1 7. (Original) The method of claVi 1, further comprising: 

2 prior to deletion of said one or more keys, receiving a request from an 

3 information sink to render said set of information to a user; 

4 accessing the encrypted form of said se^ of information from the one or 

5 more repositories; 

6 accessing said one or more keys; and 

7 providing the encrypted form of said set of information and said one or 

8 more keys to the information sink to enable the information sink to decrypt the 

9 encrypted form of said set of information using said one o^more keys to render 
1 0 said set of information to the user. 

1 8. (Original) The method of claim 7, wherein said set of Information is 

2 stored in the one or more repositories only in encrypted form, and wherein the 
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3 enc^pted form of said set of information is decrypted only when it is necessary to 

4 render\3aid set of information to the user. 

1 9. (Original) The method of claim 1, wherein purging comprises: 

2 detenMGing, based upon an information retention policy, whether said set 

3 of information should be purged from the system; and 

4 in response t\ a determination that said set of information should be 

5 purged from the systenk purging said set of information from the system by 

6 deleting said one or more Keys, thereby making said set of information 

7 unrenderable. 

1 10. (Original) The methooNof claim 9, wherein said information retention 

2 policy is time-based such that said se^ of information is purged after a certain 

3 period of time. 

1 11. (Original) The method of claim k wherein said information retention 

2 policy is condition-based such that said set of Wormation is purged when one or 

3 more conditions are satisfied. 



1 12. (Currently amended) An apparatus for m^ging information retention 

2 in a system, comprising: 

3 a mechanism for receiving a set of information intii a system; 

4 a mechanism for associating one or more keys with sl^id set of 

5 information; 

6 a mechanism for encrypting said set of information using^aid one or more 

7 keys; 

8 o a mechanism for storing said set of information in encrypted form into one 

9 or more repositories , wherein only the encrypted forni of the set of infot^iation is 

4 
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perkistentlv stored within the infomiation system and no unencrypted fomi of the 
set oK^nfomiation is persistently stored within the information system ; and 
mechanism for purging said set of information from the system by 
deleting said one or more keys, thereby making said set of information 
unrenderable 



1 13. (Original) The apparatus of claim 12, wherein said set of information 

2 is purged from th^system without requiring that the encrypted form of said set of 

3 information be deletfed from the one or more repositories. 

1 14. (Original) The^pparatus of claim 12, wherein said set of information 

2 is stored in the one or more rfef)Ositories only in encrypted form. 

1 15. (Original) The apparatus of claim 1 2, wherein said one or more keys 

2 comprises a symmetrically paired seiVof keys. 

1 16. (Original) The apparatus of cl\im 12, fiirther comprising: 

2 a mechanism for receiving, prior to ^deletion of said one or more keys, a 

3 request from an information sink to render saW set of information to a user; 

4 a mechanism for accessing the encrypte^ form of said set of information 

5 from the one or more repositories; 

6 a mechanism for decrypting the encrypted fVm of said set of information 

7 using said one or more keys to derive said set of information; and 

8 a mechanism for providing said set of informatiVi to the information sink 

9 to enable the information sink to render said set of infonri^tion to the user. 

1 17, (Original) The apparatus of claim 16, wherein sai(J\set of information 

2 is stored in the one or more repositories only in encrypted form,Ynd wherein the 
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3 enciypted form of said set of information is decrypted only when it is necessary to 

4 render said set of information to the user. 



1 18. (Original) The apparatus of claim 12, further comprising: 

2 a mechanism for receiving, prior to deletion of said one or more keys, a 

3 request from anVformation sink to render said set of information to a user; 

4 a mechanisk for accessing the encrypted form of said set of information 

5 from the one or moreVepositories; 

6 a mechanism forsaccessing said one or more keys; and 

7 a mechanism for providing the encrypted form of said set of information 

8 and said one or more keys toNhe information sink to enable the information sink 

9 to decrypt the encrypted form o^ said set of information using said one or more 
1 0 keys to render said set of informatton to the user. 

1 19. (Original) The apparatus of^aim 1 8, wherein said set of information 

2 is stored in the one or more repositories only in encrypted form, and wherein the 

3 encrypted form of said set of information is decrypted by the information sink 

4 only when it is necessary to render said set of information to the user. 

1 20. (Original) The apparatus of claim 12, wherein the mechanism for 

2 purging comprises: \ 

3 a mechanism for determining, based upon an inKmnation retention policy, 

4 whether said set of information should be purged from theVystem; and 

5 a mechanism for deleting, in response to a determination that said set of 

6 information should be purged from the system, said one or mordJceys, thereby 

7 making said set of information unrenderable. \ 



6 

EJG E:\Sun Microsystems\SUN-P3748-MEG\Amendment A SUN-P3748-MEG.doc 



1 \ 21 . (Original) The apparatus of claim 20, wherein said information 

2 retention policy is time-based such that said set of information is purged after a 

3 certain pei!;|od of time. 

1 22. (OMginal) The apparatus of claim 20, wherein said information 

2 retention policy\s condition-based such that said set of information is purged 

3 when one or moreVonditions are satisfied. 



1 23 . (Currently amended) A computer readable medium having stored 

2 thereon instructions whick when executed by one or more processors, cause the 

3 one or more processors to manage information retention in a system, comprising: 

4 instructions for causingsone or more processors to receive a set of 

5 information into a system; 

6 instructions for causing one\r more processors to associate one or more 

7 keys with said set of information; 

8 instructions for causing one or m\re processors to encrypt said set of 

9 information using said one or more keys; 

10 instructions for causing one or more p^ocessors to store said set of 

1 1 information in encrypted form into one or more ris^positories; 

12 wherein only the encrypted form of the set of information is persistently 

13 stored within the information system and no unencrypted form of the set of 

14 information is persistently stored within the information Vstem, and 

15 instructions for causing one or more processors to purge said set of 

1 6 information from the system by deleting said one or more key s>^hereby making 

1 7 said set of information unrenderable. 
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1 \ 24. (Original) The computer readable medium of claim 23, wherein said 

2 set ^information is purged from the system without requiring that the encrypted 

3 formV said set of information be deleted from the one or more repositories. 

1 2k (Original) The computer readable medium of claim 23, wherein said 

2 set of infomiation is stored in the one or more repositories only in encrypted form. 

1 26. (Original) The computer readable medium of claim 23, wherein said 

2 one or more keys comprises a symmetrically paired set of keys. 

1 27. (Original) Ti\^ computer readable medium of claim 23, further 

2 comprising: 

3 instructions for causiW one or more processors to receive, prior to deletion 

4 of said one or more keys, a request from an information sink to render said set of 

5 information to a user; 

6 instructions for causing one ^ more processors to access the encrypted 

7 form of said set of information from th\ one or more repositories; 

8 instructions for causing one or mote processors to decrypt the encrypted 

9 form of said set of information using said on^or more keys to derive said set of 

10 information; and 

1 1 instructions for causing one or more proc^sors to provide said set of 

12 information to the information sink to enable the information sink to render said 

1 3 set of information to the user. 



1 28. (Original) The computer readable medium of claim 27, wherein said 

2 set of information is stored in the one or more repositories only in encrypted form, 

3 and wherein the encrypted form of said set of information is dec^ted only when 

4 it is necessary to render said set of information to the user. 
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1 \ 29. (Original) The computer readable medium of claim 23, further 

2 comnrising: 

3 \instructions for causing one or more processors to receive, prior to deletion 

4 of said oke or more keys, a request from an information sink to render said set of 

5 informatioii to a user; 

6 instructions for causing one or more processors to access the encrypted 

7 form of said seVof information from the one or more repositories; 

8 instructions for causing one or more processors to access said one or more 

9 keys; and \ 

10 instructions foVcausing one or more processors to provide the encrypted 

1 1 form of said set of inforrtiation and said one or more keys to the information sink 

12 to enable the information sink to decrypt the encrypted form of said set of 

13 information using said one ok more keys to render said set of information to the 

14 user. \ 

1 30. (Original) The computefsxeadable medium of claim 29, wherein said 



2 set of information is stored in the oneV more repositories only in encrypted form, 

3 and wherein the encrypted form of said Set of information is decrypted by the 

4 information sink only when it is necessaryio render said set of information to the 

5 user. \ 



1 31. (Original) The computer readable medium of claim 23, wherein the 

2 instructions for causing one or more processors to purge said set of information 

3 from the system comprises: \ 

4 instructions for causing one or more processors toMetermine, based upon 

5 an information retention policy, whether said set of informafiDn should be purged 

6 from the system; and \ 
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7 \ instructions for causing one or more processors to delete, in response to a 

8 determWion that said set of information should be purged from the system, said 

9 one or moreke^s, thereby making said set of information unrenderable. 

1 32. (Original) "Fhe computer readable medium of claim 3 1 , wherein said 

2 information retention policWs time-based such that said set of information is 

3 purged after a certain period ofWie. 



1 33. (Original) The computer readable medium of claim 31, wherein said 

2 information retention policy is condition-baseo^ch that said set of information is 

3 purged when one or more conditions are satisfied. 
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